Derek LinUnderstanding UEBA: from Scored Events to StoriesIn the last post of this series, I described a UEBA event processing journey starting from raw events to eventually generating their risk…Dec 17, 2022Dec 17, 2022
Derek LinUnderstanding UEBA: from Raw Events to Scored EventsIn the last two posts, I talked about evaluation criteria and technical components required in building a user and entity behavior…Dec 8, 2022Dec 8, 2022
Derek LinBuilding a UEBA Risk EngineIn my last post, I described how to evaluate user and entity behavior analytics (UEBA) from an external perspective. To gain a deeper…Nov 24, 2022Nov 24, 2022
Derek LinThe What and How of Evaluating UEBA Under the HoodUser and entity behavior analytics (UEBA) is a fascinating topic for security researchers. At its core, it is about finding interesting…Nov 12, 2022Nov 12, 2022